Corel Pdf Fusion vulnerabilities
5 known vulnerabilities affecting corel/pdf_fusion.
Total CVEs
5
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH3
Vulnerabilities
Page 1 of 1
CVE-2013-0742P2CRITICALCVSS 9.3PoCv1.112013-10-03
CVE-2013-0742 [CRITICAL] CWE-119 CVE-2013-0742: Stack-based buffer overflow in Corel PDF Fusion 1.11 allows remote attackers to execute arbitrary co
Stack-based buffer overflow in Corel PDF Fusion 1.11 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long ZIP directory entry name in an XPS file.
nvd
CVE-2013-3248P3CRITICALCVSS 9.3PoCv1.112013-10-03
CVE-2013-3248 [CRITICAL] CVE-2013-3248: Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges v
Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .pdf or .xps file.
nvd
CVE-2021-38096P3HIGHCVSS 7.8v2.6.2.02021-10-01
CVE-2021-38096 [HIGH] CWE-787 CVE-2021-38096: Coreip.dll in Corel PDF Fusion 2.6.2.0 is affected by an Out-of-bounds Write vulnerability when pars
Coreip.dll in Corel PDF Fusion 2.6.2.0 is affected by an Out-of-bounds Write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious PDF fil
nvd
CVE-2021-38097P3HIGHCVSS 7.8v2.6.2.02021-10-01
CVE-2021-38097 [HIGH] CWE-787 CVE-2021-38097: Corel PDF Fusion 2.6.2.0 is affected by an Out-of-bounds Write vulnerability when parsing a crafted
Corel PDF Fusion 2.6.2.0 is affected by an Out-of-bounds Write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious PDF file.
nvd
CVE-2021-38098P3HIGHCVSS 7.8v2.6.2.02021-10-01
CVE-2021-38098 [HIGH] CWE-787 CVE-2021-38098: Corel PDF Fusion 2.6.2.0 is affected by a Heap Corruption vulnerability when parsing a crafted file.
Corel PDF Fusion 2.6.2.0 is affected by a Heap Corruption vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious PDF file.
nvd